$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: ygHPccIYv5Ks9qkx6e/MyPX++g3xc+BdlPQlb+GdAko= Subject key identifier: 05:0E:21:AD:C8:8C:FF:3F:3E:95:BC:3A:D8:DF:EA:D4:0D:1A:A7:B3 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0EF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2B53 Signing time: Thu 24 Apr 2025 16:50:20 +0000 Manifest this update: Thu 24 Apr 2025 16:50:19 +0000 Manifest next update: Thu 01 May 2025 16:50:19 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: aOSDg2Ua6Uwoo9VXjYGY6dQII4MtxIeQgHI38Y96Gic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3825 (0xef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Apr 24 16:50:19 2025 GMT Not After : May 1 16:50:19 2025 GMT Subject: CN=680a6bcc-cba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fe:05:6b:4d:69:5e:72:e3:2e:35:c4:7e:80: 36:83:4b:84:7e:3a:af:c1:03:28:f2:bd:78:ed:e1: c0:13:b4:42:07:a9:60:33:98:db:06:a9:a9:fc:e3: ee:61:63:bd:d0:54:5f:a2:a3:3c:3a:71:7b:f7:ac: 48:4a:68:84:5a:64:e8:76:77:e8:3c:a1:ea:b3:63: e6:7a:15:70:bf:f8:52:ed:e1:0e:b8:6a:76:5d:ca: 9c:28:ef:a6:ef:a3:4a:73:09:31:08:f0:44:99:2f: 3d:b4:b7:fc:b8:11:c1:3a:45:43:80:b8:11:78:30: b2:5c:65:5f:cb:d9:93:77:df:8c:4b:5c:16:ad:47: 21:8d:5c:8c:7a:5a:24:79:ea:f7:ad:1b:aa:89:85: 75:9a:db:80:45:7a:e0:40:1c:2c:41:2b:ac:53:6c: 71:05:e9:74:bb:20:f7:84:55:13:ed:da:63:00:a0: f7:93:e9:83:86:50:fd:bc:9a:5e:ba:9c:9c:17:67: ed:bb:5d:3f:6d:d3:23:b0:57:51:12:32:b4:f1:55: ea:b6:df:5e:0c:79:51:d8:27:ec:ea:f1:b8:ed:de: 9f:72:12:a0:98:2b:76:27:2b:04:5b:41:fe:00:d2: a9:9f:3f:dd:46:ae:b3:80:76:89:fe:7e:2f:e4:ca: 14:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0E:21:AD:C8:8C:FF:3F:3E:95:BC:3A:D8:DF:EA:D4:0D:1A:A7:B3 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4a:8f:a4:92:e4:08:ee:4f:ea:0d:b8:90:67:b5:d3:1c:c8: 8d:26:cb:2c:0f:e9:b0:69:c0:e3:5c:93:b9:af:cb:a5:d1:fe: a9:44:74:e7:be:2c:92:e9:82:a3:6d:08:e9:0c:8e:e0:1f:72: 5a:99:d4:d9:8b:09:82:6c:7b:66:6c:f9:c4:f5:33:79:71:a7: 7c:91:2b:7f:d4:0d:b6:1b:e9:b6:3d:dc:d9:22:99:74:80:33: 09:c8:3d:f4:01:07:38:ed:91:f9:1f:6e:a0:17:df:97:1d:4d: cd:ba:97:06:0a:9b:86:32:c2:fc:a7:4e:b1:45:66:32:79:e6: d2:37:6d:36:75:c0:ef:ee:fc:96:a9:71:72:4a:17:9c:f3:45: e2:ba:3c:13:0b:71:77:24:57:58:06:b9:f5:fe:68:00:0e:74: 9d:18:f0:2d:6a:7e:29:8d:11:66:68:75:46:c1:fb:cf:9a:b0: 45:9b:71:fc:4a:25:6e:db:82:6b:1c:3a:ef:51:51:eb:6a:ed: 3e:b5:8a:9d:6f:22:a7:e7:59:fd:fa:97:13:a2:c7:90:80:e7: 07:e4:9b:4d:3a:4c:9b:e4:02:bd:82:aa:2d:aa:30:b6:7b:60: dd:21:95:b6:2c:fc:85:73:28:20:61:97:52:00:f2:b7:c6:b6: af:14:0a:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwNDI0MTY1MDE5WhcNMjUwNTAxMTY1MDE5WjAYMRYwFAYD VQQDEw02ODBhNmJjYy1jYmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmf4Fa01pXnLjLjXEfoA2g0uEfjqvwQMo8r147eHAE7RCB6lgM5jbBqmp/OPu YWO90FRfoqM8OnF796xISmiEWmTodnfoPKHqs2PmehVwv/hS7eEOuGp2XcqcKO+m 76NKcwkxCPBEmS89tLf8uBHBOkVDgLgReDCyXGVfy9mTd9+MS1wWrUchjVyMelok eer3rRuqiYV1mtuARXrgQBwsQSusU2xxBel0uyD3hFUT7dpjAKD3k+mDhlD9vJpe upycF2ftu10/bdMjsFdREjK08VXqtt9eDHlR2Cfs6vG47d6fchKgmCt2JysEW0H+ ANKpnz/dRq6zgHaJ/n4v5MoUBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUOIa3I jP8/PpW8Otjf6tQNGqezMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjSo+kkuQI7k/qDbiQZ7XTHMiNJsssD+mwacDjXJO5r8ul0f6pRHTn viyS6YKjbQjpDI7gH3JamdTZiwmCbHtmbPnE9TN5cad8kSt/1A22G+m2PdzZIpl0 gDMJyD30AQc47ZH5H26gF9+XHU3NupcGCpuGMsL8p06xRWYyeebSN202dcDv7vyW qXFyShec80XiujwTC3F3JFdYBrn1/mgADnSdGPAtan4pjRFmaHVGwfvPmrBFm3H8 SiVu24JrHDrvUVHrau0+tYqdbyKn51n9+pcToseQgOcH5JtNOkyb5AK9gqotqjC2 e2DdIZW2LPyFcyggYZdSAPK3xravFAqJ -----END CERTIFICATE-----Generated at Sat Apr 26 08:06:25 2025 by rpki-client